Towards Building a Forensics Aware Language for Secure Logging

Shams Zawoad; Marjan Mernik; Ragib Hasan

Geodesic

Parcourir par

Towards Building a Forensics Aware Language for Secure Logging

Shams Zawoad ; Marjan Mernik ; Ragib Hasan

Computer Science and Information Systems, Tome 11 (2014) no. 4.

Voir la notice de l'article provenant de la source Computer Science and Information Systems website

Résumé

Trustworthy system logs and application logs are crucial for digital forensics. Researchers have proposed different security mechanisms to ensure the integrity and confidentiality of logs. However, applying current secure logging schemes on heterogeneous formats of logs is tedious. Here, we propose Forensics Aware Language (FAL), a domain-specific language (DSL) through which we can apply a secure logging mechanism on any format of logs. Using FAL, we can define log structure, which represents the format of logs and ensures the security properties of a chosen secure logging scheme. This log structure can later be used by FAL to serve two purposes: it can be used to store system logs securely and it will help application developers for secure application logging by generating the required source code.

Keywords: DSL, Secure Logging, Audit Trail, Digital Forensics

@article{CSIS_2014_11_4_a6,
     author = {Shams Zawoad and Marjan Mernik and Ragib Hasan},
     title = {Towards {Building} a {Forensics} {Aware} {Language} for {Secure} {Logging}},
     journal = {Computer Science and Information Systems},
     publisher = {mathdoc},
     volume = {11},
     number = {4},
     year = {2014},
     url = {http://geodesic.mathdoc.fr/item/CSIS_2014_11_4_a6/}
}

TY  - JOUR
AU  - Shams Zawoad
AU  - Marjan Mernik
AU  - Ragib Hasan
TI  - Towards Building a Forensics Aware Language for Secure Logging
JO  - Computer Science and Information Systems
PY  - 2014
VL  - 11
IS  - 4
PB  - mathdoc
UR  - http://geodesic.mathdoc.fr/item/CSIS_2014_11_4_a6/
ID  - CSIS_2014_11_4_a6
ER  -

%0 Journal Article
%A Shams Zawoad
%A Marjan Mernik
%A Ragib Hasan
%T Towards Building a Forensics Aware Language for Secure Logging
%J Computer Science and Information Systems
%D 2014
%V 11
%N 4
%I mathdoc
%U http://geodesic.mathdoc.fr/item/CSIS_2014_11_4_a6/
%F CSIS_2014_11_4_a6

Shams Zawoad; Marjan Mernik; Ragib Hasan. Towards Building a Forensics Aware Language for Secure Logging. Computer Science and Information Systems, Tome 11 (2014) no. 4. http://geodesic.mathdoc.fr/item/CSIS_2014_11_4_a6/